The European Data Protection Board (EDPB) has issued a long-awaited opinion on the EU-US Data Privacy Framework.
Here are some key takeaways:
Norwegian regulator Datatilsynet has slapped Grindr, a location-based online dating application, with a $7.1 million fine for sharing data with advertisers without the consent of its users. Here are some
Continue Reading Datatilsynet’s $7.1 Million Fine Against Grindr: Key Takeaways
“Clear is kind. Unclear is unkind,” according to author Brené Brown.
A joint opinion from the European Data Protection Board (EDPB) and European Data Protection Supervisor (EDPS) on the
Continue Reading ‘Legal Uncertainty Is Unkind’ EDPB and EDPS Say in Joint Opinion
Article 23 GDPR gives member states the ability to impose exceptions on some rights and principles under GDPR.
What does that mean? The European Data Protection Board has issued an
Continue Reading What does Article 23 GDPR mean?
Here is one more note on the UK Department for Digital, Culture, Media and Sport’s (DCMS) new international transfers initiative: The documents contain a template and a detailed questionnaire for
Continue Reading UK Provides Helpful Documents Regarding DCMS’ International Transfers Initiative
Third country laws – more than meets the eye. In practice – problematic legislation in disguise.
The European Data Protection Board has issued a “Transformers” style plan for assessing whether
Continue Reading EDPB Issues Final Recommendations on Third Country Data Transfers
Hey voice assistant: you’ve got some complying to do.
The European Data Protection Board has issued draft guidelines on the data protection aspects of using the increasingly prevalent virtual voice
Continue Reading EDPB Issues Draft Guidelines on Data Protection Aspects of Voice Assistants
The European Data Protection Board has issued guidance on its Coordinated Enforcement Framework (CEF). The CEF provides a structure for coordinating recurring annual activities by EDPB Supervisory Authorities. The annual
Continue Reading EDPB Issues Guidance on Its Coordinated Enforcement Framework
Brace yourselves, the post-Schrems II supplemental measures are coming!
The European Data Protection Board adopted recommendations on measures that supplement transfer tools to ensure compliance with the European Union level of protection of personal data, as well as recommendations on the European Essential Guarantees for surveillance measures.
“The implications of the Schrems II judgment extend to all transfers to third countries. Therefore, there are no quick fixes, nor a one-size-fits-all solution for all transfers, as this would be ignoring the wide diversity of situations data exporters face. Data exporters will need to evaluate their data processing operations and transfers and take effective measures bearing in mind the legal order of the third countries to which they transfer or intend to transfer data,” said EDPB chair Andrea Jelinek
The European Essential Guarantees recommendations provide data exporters with elements to determine if the legal framework governing public authorities’ access to data for surveillance purposes in third countries can be regarded as a justifiable interference with privacy rights.
Details in this EDPB Press Release.
Continue Reading EDPB Adopts Measures on Post-Schrems II Supplemental Data Transfer Tools
Connected vehicles process a lot of data. Some of it is personal data under the General Data Protection Regulation (GDPR). The European Data Protection Board has issued draft guidelines for
Continue Reading EDPB Issues Draft Data Privacy Guidelines for Connected Vehicles